Oval Definition:oval:org.opensuse.security:def:57927
Revision Date:2021-06-04Version:1
Title:Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_130 fixes several issues.

The following security issues were fixed:

- Fix a kernel warning during sysfs read (bsc#1186235) - CVE-2020-36322: An issue was discovered in the FUSE filesystem implementation in the Linux kernel aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952). - CVE-2021-29154: BPF JIT compilers in the Linux kernel have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c (bsc#1184710)
Family:unixClass:patch
Status:Reference(s):1021483
1045640
1049825
1076033
1086774
1086775
1086813
1086814
1086817
1086820
1087082
1087083
1091236
1092885
1096141
1096223
1098735
1100147
1102682
1103203
1105323
1106191
1107256
1109893
1110542
1111319
1112911
1113296
1115375
1116995
1120629
1120630
1120631
1123161
1127155
1128471
1128472
1128474
1128476
1128480
1128481
1128490
1128492
1128493
1130972
1131823
1134226
1134399
1135715
1137443
1137977
1138034
1139358
1140012
1140039
1140652
1140903
1140945
1141401
1141402
1141452
1141453
1141454
1141628
1141780
1141782
1141783
1141784
1141785
1141786
1141787
1141789
1142023
1142098
1142857
1143045
1143048
1143189
1143191
1144257
1144273
1144288
1144920
1145521
1145920
1145922
1146163
1148931
1154162
1174157
1184710
1184952
1186235
828003
967671
CVE-2010-2252
CVE-2012-4929
CVE-2013-2131
CVE-2014-3675
CVE-2014-3676
CVE-2014-3677
CVE-2014-4877
CVE-2015-2059
CVE-2016-10169
CVE-2016-10170
CVE-2016-10171
CVE-2016-10172
CVE-2016-4971
CVE-2017-15710
CVE-2017-15715
CVE-2017-18551
CVE-2018-10902
CVE-2018-10938
CVE-2018-11806
CVE-2018-12617
CVE-2018-1283
CVE-2018-1301
CVE-2018-1302
CVE-2018-1303
CVE-2018-1312
CVE-2018-20532
CVE-2018-20533
CVE-2018-20534
CVE-2018-20855
CVE-2018-20856
CVE-2018-3639
CVE-2018-3640
CVE-2018-5390
CVE-2019-10164
CVE-2019-10207
CVE-2019-1125
CVE-2019-11810
CVE-2019-12735
CVE-2019-13631
CVE-2019-14283
CVE-2019-14284
CVE-2019-15117
CVE-2019-15118
CVE-2019-2745
CVE-2019-2762
CVE-2019-2766
CVE-2019-2769
CVE-2019-2786
CVE-2019-2816
CVE-2019-2842
CVE-2019-2974
CVE-2019-3819
CVE-2019-3855
CVE-2019-3856
CVE-2019-3857
CVE-2019-3858
CVE-2019-3859
CVE-2019-3860
CVE-2019-3861
CVE-2019-3862
CVE-2019-3863
CVE-2019-7317
CVE-2019-8595
CVE-2019-8607
CVE-2019-8615
CVE-2019-8644
CVE-2019-8649
CVE-2019-8658
CVE-2019-8666
CVE-2019-8669
CVE-2019-8671
CVE-2019-8672
CVE-2019-8673
CVE-2019-8676
CVE-2019-8677
CVE-2019-8678
CVE-2019-8679
CVE-2019-8680
CVE-2019-8681
CVE-2019-8683
CVE-2019-8684
CVE-2019-8686
CVE-2019-8687
CVE-2019-8688
CVE-2019-8689
CVE-2019-8690
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-36322
CVE-2021-29154
SUSE-SU-2017:0103-1
SUSE-SU-2018:0608-1
SUSE-SU-2018:1161-1
SUSE-SU-2018:1935-1
SUSE-SU-2018:2864-1
SUSE-SU-2018:2973-1
SUSE-SU-2019:0655-1
SUSE-SU-2019:1456-1
SUSE-SU-2019:1783-1
SUSE-SU-2019:2036-1
SUSE-SU-2019:2265-1
SUSE-SU-2019:2299-1
SUSE-SU-2019:2345-2
SUSE-SU-2020:0050-1
SUSE-SU-2020:2861-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND bubblewrap-0.2.0-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python-Django-2.2.4-lp151.2.3 is installed
  • OR python3-Django-2.2.4-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • gvim-7.4.326-17.3 is installed
  • OR vim-7.4.326-17.3 is installed
  • OR vim-data-7.4.326-17.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND shim-0.9-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • perl-5.18.2-12.14 is installed
  • OR perl-32bit-5.18.2-12.14 is installed
  • OR perl-base-5.18.2-12.14 is installed
  • OR perl-doc-5.18.2-12.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_92-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • ghostscript-9.15-22 is installed
  • OR ghostscript-x11-9.15-22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libvirt-3.3.0-5.40 is installed
  • OR libvirt-admin-3.3.0-5.40 is installed
  • OR libvirt-client-3.3.0-5.40 is installed
  • OR libvirt-daemon-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-hooks-3.3.0-5.40 is installed
  • OR libvirt-daemon-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-xen-3.3.0-5.40 is installed
  • OR libvirt-doc-3.3.0-5.40 is installed
  • OR libvirt-libs-3.3.0-5.40 is installed
  • OR libvirt-lock-sanlock-3.3.0-5.40 is installed
  • OR libvirt-nss-3.3.0-5.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND kgraft-patch-4_4_180-94_130-default-9-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • git-2.12.3-27.22 is installed
  • OR git-core-2.12.3-27.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND perl-Archive-Zip-1.34-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libipa_hbac0-1.16.1-2 is installed
  • OR libsss_certmap0-1.16.1-2 is installed
  • OR libsss_idmap0-1.16.1-2 is installed
  • OR libsss_nss_idmap0-1.16.1-2 is installed
  • OR libsss_simpleifp0-1.16.1-2 is installed
  • OR libsss_sudo-1.13.4-34.7 is installed
  • OR python-sssd-config-1.16.1-2 is installed
  • OR sssd-1.16.1-2 is installed
  • OR sssd-32bit-1.16.1-2 is installed
  • OR sssd-ad-1.16.1-2 is installed
  • OR sssd-ipa-1.16.1-2 is installed
  • OR sssd-krb5-1.16.1-2 is installed
  • OR sssd-krb5-common-1.16.1-2 is installed
  • OR sssd-ldap-1.16.1-2 is installed
  • OR sssd-proxy-1.16.1-2 is installed
  • OR sssd-tools-1.16.1-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND ucode-intel-20180703-13.25 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1566321308.1de18b9a4-3.7 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1566321308.1de18b9a4-3.7 is installed
  • OR crowbar-ha-6.0+git.1566406179.7549de2-3.7 is installed
  • OR crowbar-openstack-6.0+git.1566404979.41279a88e-3.7 is installed
  • OR crowbar-ui-1.3.0+git.1563181545.65360af5-8 is installed
  • OR openstack-ceilometer-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-central-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-compute-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-ipmi-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-notification-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-polling-11.0.2~dev14-3.7 is installed
  • OR openstack-cinder-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-api-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-backup-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-scheduler-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-volume-13.0.7~dev3-3.7 is installed
  • OR openstack-designate-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-agent-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-api-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-central-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-producer-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-sink-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-worker-7.0.1~dev21-3.7 is installed
  • OR openstack-heat-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-api-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-engine-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev19-3.7 is installed
  • OR openstack-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed
  • OR openstack-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed
  • OR openstack-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed
  • OR openstack-ironic-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-api-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-conductor-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-python-agent-3.3.3~dev4-3.7 is installed
  • OR openstack-keystone-14.1.1~dev8-3.7 is installed
  • OR openstack-magnum-7.1.1~dev28-3.7 is installed
  • OR openstack-magnum-api-7.1.1~dev28-3.7 is installed
  • OR openstack-magnum-conductor-7.1.1~dev28-3.7 is installed
  • OR openstack-manila-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-api-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-data-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-scheduler-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-share-7.3.1~dev3-4.7 is installed
  • OR openstack-monasca-notification-1.14.2~dev1-6.7 is installed
  • OR openstack-monasca-persister-1.12.1~dev9-9 is installed
  • OR openstack-monasca-persister-java-1.12.1~dev9-9 is installed
  • OR openstack-neutron-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-dhcp-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-gbp-5.0.1~dev459-3.7 is installed
  • OR openstack-neutron-ha-tool-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-l3-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev14-3.7 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev14-3.7 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-macvtap-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-metadata-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-metering-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-server-13.0.5~dev22-3.7 is installed
  • OR openstack-nova-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-api-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-cells-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-compute-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-conductor-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-console-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-novncproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-placement-api-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-scheduler-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-serialproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-vncproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-octavia-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-amphora-agent-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-api-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-health-manager-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-housekeeping-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-worker-3.1.2~dev8-3.7 is installed
  • OR openstack-tempest-19.0.0-12 is installed
  • OR openstack-tempest-test-19.0.0-12 is installed
  • OR python-ceilometer-11.0.2~dev14-3.7 is installed
  • OR python-cinder-13.0.7~dev3-3.7 is installed
  • OR python-cinder-tempest-plugin-0.1.0-8 is installed
  • OR python-designate-7.0.1~dev21-3.7 is installed
  • OR python-heat-11.0.3~dev19-3.7 is installed
  • OR python-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed
  • OR python-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed
  • OR python-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed
  • OR python-ironic-11.1.4~dev9-3.7 is installed
  • OR python-ironicclient-2.5.3-4.7 is installed
  • OR python-ironicclient-doc-2.5.3-4.7 is installed
  • OR python-keystone-14.1.1~dev8-3.7 is installed
  • OR python-keystonemiddleware-5.2.0-8 is installed
  • OR python-magnum-7.1.1~dev28-3.7 is installed
  • OR python-manila-7.3.1~dev3-4.7 is installed
  • OR python-monasca-notification-1.14.2~dev1-6.7 is installed
  • OR python-monasca-persister-1.12.1~dev9-9 is installed
  • OR python-monasca-tempest-plugin-0.3.0-8 is installed
  • OR python-neutron-13.0.5~dev22-3.7 is installed
  • OR python-neutron-gbp-5.0.1~dev459-3.7 is installed
  • OR python-neutron-lbaas-13.0.1~dev14-3.7 is installed
  • OR python-nova-18.2.2~dev9-3.7 is installed
  • OR python-octavia-3.1.2~dev8-3.7 is installed
  • OR python-openstackclient-3.16.2-8 is installed
  • OR python-openstacksdk-0.17.3-8 is installed
  • OR python-proliantutils-2.8.4-8 is installed
  • OR python-tempest-19.0.0-12 is installed
  • OR python-vmware-nsx-13.0.1~dev146-9 is installed
  • OR python-vmware-nsxlib-13.0.1~dev24-8 is installed
  • OR yast2-crowbar-3.4.2-8 is installed
    • BACK